$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/7C7AF8E6E67011EEB76DCB76C4F9AE02.roa File: 7C7AF8E6E67011EEB76DCB76C4F9AE02.roa (raw, json) Hash identifier: KcnRjC7T6Kcnl9YrWn5mYyKPUtty/r1wIebOb0MFfxM= Subject key identifier: FF:4E:5D:CB:CE:31:B5:52:2F:67:8D:85:69:38:39:60:AD:8F:84:C4 Certificate issuer: /CN=A913F0DF/serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Certificate serial: 01A8 Authority key identifier: 9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/7C7AF8E6E67011EEB76DCB76C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:28:32 +0000 ROA not before: Fri 09 Jan 2026 03:23:34 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152155 IP address blocks: 36.50.76.0/24 maxlen: 24 2001:df3:4440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0DF, serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Validity Not Before: Jan 9 03:23:34 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a414d0-8cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d9:38:ce:e3:56:ab:fc:97:6d:d1:3c:23:1f: 2d:62:e6:1d:16:7c:3e:bd:8c:f7:9d:a5:86:f7:dd: 8c:7b:3f:22:b0:85:92:7f:3a:ac:9d:1c:77:a4:e1: de:3c:02:a4:2b:b2:a0:93:a2:23:a8:b0:a4:1a:e2: 74:2d:bb:fb:2e:3e:f7:26:c8:f5:cb:ef:45:79:0a: 61:45:69:98:e3:1c:f2:49:04:a8:dc:92:1e:e7:9f: 83:6f:79:59:a9:95:71:3f:80:22:cb:26:21:af:18: e0:ab:d6:2d:90:29:70:42:61:ed:a5:4d:79:00:5f: 8e:ce:fe:c0:9e:f9:5d:1c:f4:51:fa:ab:0f:3d:c8: 0a:c6:0f:58:84:98:35:48:f2:1f:f3:04:c2:94:e1: 6b:c2:29:15:d0:f9:18:88:f8:96:7e:e5:a0:92:8d: 12:da:7c:6e:59:b4:ea:ca:f6:40:c1:4e:bf:6d:1d: bf:56:ad:cc:11:14:63:93:77:0f:cd:84:3c:d6:11: 3a:13:06:e8:9a:28:1e:30:1a:7d:29:4f:04:b8:c1: ec:29:0a:f9:08:e4:ab:fb:59:c6:64:ea:e4:c4:a4: 7e:46:f9:79:fc:35:15:0c:38:b5:00:49:2e:96:57: 7d:c5:b5:00:ea:5a:98:0d:cf:13:b3:39:a2:bc:d6: 3e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4E:5D:CB:CE:31:B5:52:2F:67:8D:85:69:38:39:60:AD:8F:84:C4 X509v3 Authority Key Identifier: keyid:9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/7C7AF8E6E67011EEB76DCB76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.50.76.0/24 IPv6: 2001:df3:4440::/48 Signature Algorithm: sha256WithRSAEncryption b4:17:91:bb:dc:9e:84:5c:38:4e:ef:0b:4a:bc:7d:f5:b3:2b: 81:af:7c:93:a0:82:6e:ed:31:d4:df:ae:9b:fe:7e:d2:c7:f2: be:1d:22:0e:02:0e:0c:69:e6:5e:e3:e1:ec:39:ba:ac:b1:d2: 71:96:91:51:f7:24:42:e5:6d:6c:df:41:79:8d:53:a7:cb:28: 8f:a9:cf:f5:af:ef:c6:e2:0c:ff:71:42:3d:38:ec:01:18:04: 5f:e2:77:b4:84:00:66:bf:d5:cd:ad:73:30:6a:42:f6:1f:93: 18:21:c2:1d:3d:6f:d7:7c:13:55:d4:cd:0f:21:f3:4a:2f:c0: 10:eb:a7:13:86:f9:6f:00:60:42:98:2e:98:3d:e0:25:9f:e6: b6:c4:16:cd:3b:90:8a:f9:20:cb:0c:dd:7e:1b:cf:b4:8e:6b: e6:a1:e1:ae:98:9f:fd:b7:c2:2c:a5:02:77:f5:c2:ad:e3:77: ab:0a:61:e9:3c:46:da:8b:75:87:3d:e3:54:b8:cf:df:ac:ea: 76:4c:ff:65:bb:0c:3d:b9:a3:fe:ab:e0:76:4b:ac:6b:b0:b2: a8:7d:2d:25:3f:e8:ce:42:b8:ca:72:0d:47:3d:6a:0d:bb:45: 32:fc:c7:63:88:f8:83:d0:19:ab:ea:9e:6c:18:46:b6:3e:18: 1d:88:b1:d7 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwREYxMTAvBgNVBAUTKDlEMDhCRjM4QTBEMzhCOENBQjdDRkQ4OEY1RDhDNEVE NjY3NzhDQzEwHhcNMjYwMTA5MDMyMzM0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTRkMC04Y2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdk4zuNWq/yXbdE8Ix8tYuYdFnw+vYz3naWG992Mez8isIWSfzqsnRx3pOHe PAKkK7Kgk6IjqLCkGuJ0Lbv7Lj73Jsj1y+9FeQphRWmY4xzySQSo3JIe55+Db3lZ qZVxP4AiyyYhrxjgq9YtkClwQmHtpU15AF+Ozv7AnvldHPRR+qsPPcgKxg9YhJg1 SPIf8wTClOFrwikV0PkYiPiWfuWgko0S2nxuWbTqyvZAwU6/bR2/Vq3MERRjk3cP zYQ81hE6EwbomigeMBp9KU8EuMHsKQr5COSr+1nGZOrkxKR+Rvl5/DUVDDi1AEku lld9xbUA6lqYDc8TszmivNY+sQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFP9OXcvO MbVSL2eNhWk4OWCtj4TEMB8GA1UdIwQYMBaAFJ0Ivzig04uMq3z9iPXYxO1md4zB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBERi9FNTA4MzY0ODk5 MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi9uUWlfT0tEVGk0eXJmUDJJOWRqRTdXWjNq TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25RaV9PS0RUaTR5cmZQMkk5ZGpFN1daM2pNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YwREYvRTUwODM2NDg5OTI4MTFFRUJCQ0FFODdBQzRGOUFFMDIvN0M3QUY4RTZF NjcwMTFFRUI3NkRDQjc2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAJDJMMA8EAgACMAkDBwAgAQ3zREAwDQYJKoZIhvcNAQELBQADggEB ALQXkbvcnoRcOE7vC0q8ffWzK4GvfJOggm7tMdTfrpv+ftLH8r4dIg4CDgxp5l7j 4ew5uqyx0nGWkVH3JELlbWzfQXmNU6fLKI+pz/Wv78biDP9xQj047AEYBF/id7SE AGa/1c2tczBqQvYfkxghwh09b9d8E1XUzQ8h80ovwBDrpxOG+W8AYEKYLpg94CWf 5rbEFs07kIr5IMsM3X4bz7SOa+ah4a6Yn/23wiylAnf1wq3jd6sKYek8RtqLdYc9 41S4z9+s6nZM/2W7DD25o/6r4HZLrGuwsqh9LSU/6M5CuMpyDUc9ag27RTL8x2OI +IPQGavqnmwYRrY+GB2Isdc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:57:59 2026 by rpki-client